| VID |
18060 |
| Severity |
40 |
| Port |
25 |
| Protocol |
TCP |
| Class |
SMTP |
| Detailed Description |
The Courier SMTP server, according to its version number, contains a buffer overflow vulnerability.
Courier is a freely available mail transport agent (MTA) for most Linux and Unix-based operating systems. Courier versions prior to 0.45 are vulnerable to a buffer overflow in the 'SHIFT_JIS' converter in 'shiftjis.c' and 'ISO2022JP' converter in 'so2022jp.c', which are a part of the Courier Japanese codeset. A remote attacker could exploit these vulnerabilities by supplying Unicode characters that exceed BMP (Basic Multilingual Plane) range. If successfully exploited, the attacker could execute arbitrary code on the affected system.
* Note: This check solely relied on the version number of the remote SMTP server to assess this vulnerability, so this might be a false positive.
* References:
http://secunia.com/advisories/11087/
http://sourceforge.net/project/shownotes.php?release_id=5767
* Platforms Affected:
Double Precision, Inc. Courier prior to 0.45
Linux Any version
Unix Any version |
| Recommendation |
Upgrade to the latest version of Courier (0.45.1 or later), available from the Courier Mail Server Web page at http://sourceforge.net/projects/courier/ |
| Related URL |
CVE-2004-0224 (CVE) |
| Related URL |
9845 (SecurityFocus) |
| Related URL |
15434 (ISS) |
|
